PRIVACY, COOKIES + HIPAA
We know that you care about your privacy which is why we do too! This privacy statement explains the personal data She’s It, LLC processes and for what purposes. References to She’s It, LLC products in this statement include our services, websites, apps, software, servers, and devices.
Personal data we collect
She’s It, LLC collects data from you, through our interactions with you and through our products. You provide some of this data directly, and we get some of it by collecting data about your interactions, use, and experiences with our products. The data we collect depends on the context of your interactions with She’s It, LLC and the choices you make through the settings, products and features you use. We also obtain data about you from third parties.
If you represent an organization, such as a business or school, that utilizes our Corporate Products from She’s It, LLC, please see the Corporate Products below in this document or refer to your company agreement with She’s It to learn how we process your data.
You have choices when it comes to the technology you use and the data you share. When we ask you to provide personal data, you can decline. Many of our products require some personal data to provide you with a service. If you choose not to provide data necessary to provide you with a product or feature, you cannot use that product or feature. Likewise, where we need to collect personal data by law or to enter into or carry out a contract with you, and you do not provide the data, we will not be able to enter into the contract; or if this relates to an existing product you’re using, we may have to suspend or cancel it. We will notify you if this is the case at the time. Where providing the data is optional, and you choose not to share personal data, features like personalization that use such data will not work for you.
How we use personal data
She’s It, LLC uses the data we collect to provide you with rich, interactive experiences. In particular, we use data to:
• Provide our products, which includes updating, securing, and troubleshooting, as well as providing support.
• Improve and develop our products.
• Personalize our products and make recommendations.
• Advertise and market to you, which includes sending promotional communications, targeting advertising, and presenting you with relevant offers.
We also use the data to operate our business, which includes analyzing our performance, meeting our legal obligations, developing our workforce, and doing research.
In carrying out these purposes, we combine data we collect from different contexts (for example, from your use of multiple She’s It, LLC products) or obtain from third parties to give you a more seamless, consistent, and personalized experience, to make informed business decisions, and for other legitimate purposes.
Reasons we share personal data
We share your personal data with your consent or to complete any transaction or provide any product you have requested or authorized. We also share data with She’s It, LLC-controlled affiliates and subsidiaries; with vendors working on our behalf; when required by law or to respond to legal process; to protect our customers; to protect lives; to maintain the security of our products; and to protect the rights and property of She’s It, LLC and its customers.
How to access and control your personal data
You can also make choices about the collection and use of your data by She’s It, LLC. You can control your personal data that She’s It, LLC has obtained, and exercise your data protection rights, by contacting She’s It. In some cases, your ability to access or control your personal data will be limited, as required or permitted by applicable law. How you can access or control your personal data will also depend on which products you use. For example, you can:
• Control the use of your data for interest-based advertising from She’s It, LLC by opting out.
• Choose whether you wish to receive promotional emails, SMS messages, telephone calls, and postal mail from She’s It, LLC.
In addition to the above, you can always contact She’s It, LLC by using our Contact Us form.
General. When a customer tries, purchases, uses, or subscribes to She’s It products or services for Corporate use, or obtains support for or professional services with such products, She’s It collects data to provide the service (including uses compatible with providing the service), provide the best experiences with our products, operate our business, and communicate with the customer. For example:
• When a customer engages with a She’s It sales representative, we collect the customer’s name and contact data, along with information about the customer’s organization, to support that engagement.
• When a customer interacts with a She’s It support professional, we collect device and usage data or error reports to diagnose and resolve problems.
• When a customer pays for products, we collect contact and payment data to process the payment.
• When She’s It sends communications to a customer, we use data to personalize the content of the communication.
• When a customer engages with She’s It for professional services, we collect the name and contact data of the customer’s designated point of contact and use information provided by the customer to perform the services that the customer has requested.
EULA – Notice to Residents of the European Economic Area
You may choose not to provide She’s It with your Personal Information. However, if you choose not to provide your Personal Information, you may not be able to use our Services, as the processing of this information is necessary for the performance of our Services
How to exercise your rights
She’s It takes steps to keep your Personal Information accurate and up to date. If you reside in the European Economic Area, you have certain rights to the Personal Information that we have collected about you. To exercise your rights to your Personal Information, please contact us at firstname.lastname@example.org or at the address listed below.
She’s It, LLC
929 S. High St., #204
West Chester, PA 19382
Attn: Legal (Privacy Department)
855-937-7437 ext. 701
Subject to applicable law and in exceptional circumstances only, we may charge for this service and we will respond to reasonable requests as soon as practicable, and in any event, within the time limits prescribed by law.
We encourage you to contact us directly and allow us to work with you to address your concerns. Nevertheless, you have the right to lodge a complaint with a competent data protection supervisory authority, in particular in the EU Member State where you reside, work or the place of the alleged infringement. You have the right to do so if you consider that the processing of Personal Information relating to you infringes applicable data protection laws.
In order to enhance our Services it might be necessary to change this Notice to Residents of the European Economic Area from time to time. We therefore reserve the right to modify this Notice to Residents of the European Economic Area in accordance with the applicable data protection laws. Please visit our Website from time to time for information on updates to this Notice to Residents of the European Economic Area.
In case of questions about the processing of your Personal Information as a Resident of the European Economic Area, please contact us at email@example.com.
Cookies and similar technologies
• Social media. Some of our websites and products include social media cookies, including those that enable users who are signed in to the social media service to share content via that service.
Additional Cookie Information:
• A Flash cookie (or locally shared object) is a data file placed on a Device via the Adobe Flash plug-in that may be built-in to or downloaded by User to User’s Device. HTML5 cookies can be programmed through HTML5 local storage. Unlike Flash cookies, HTML5 cookies do not require a plug-in. Regular cookies may generally be disabled or removed by tools that are available as part of most commercial browsers, and in some but not all instances can be blocked in the future by selecting certain settings. Each browser User uses will need to be set separately, and different browsers offer different functionality and options in this regard. Also, these tools may not be effective with regard to Flash cookies or HTML5 cookies. For information on disabling Flash cookies go to Adobe’s web site www.adobe.com. Please be aware that if User disables or removes cookies, Flash cookies, or HTML5 cookies on User’s Device, some parts of She’s It Website, Mobile App and/or Services may not function properly, and that when User revisits She’s It Website, Mobile App and Services , User’s ability to limit cookies is subject to User’s browser settings and limitations.
• Web Beacons. Small graphic images or other web programming code called “web beacons” (also known as “1×1 GIFs” or “clear GIFs”) may be included in pages and messages of our Website, Mobile App and Services. Web beacons may be invisible to User, but any electronic image or other web programming code inserted into a page or e-mail can act as a web beacon. Web beacons or similar technologies may be used for several purposes, including, without limitation, to count visitors to the Website, Mobile App and Services, to monitor how users navigate the Website, Mobile App and Services, to count how many e-mails that were sent were actually opened or to count how many particular articles or links were actually viewed.
• Embedded Scripts. An embedded script is programming code that is designed to collect information about User’s interactions with the Website, Mobile App and Services, such as the links User clicks on. The code is temporarily downloaded onto User’s Device from She’s It web server and/or Mobile App or a third party service provider, is active only while User is connected to the Website and/or Mobile App, and is deactivated or deleted thereafter
This Notice of Privacy Practices is mandated by the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and applies specifically to She’s It My Personal Body Blueprint feature. It describes how we may use and disclose any your protected health information. It also describes your rights to access and control your protected health information. “Protected health information” is information about you, including demographic information, that may identify you and that relates to your past, present or future physical or mental health or condition; related health care services; or related to the past, present, or future payment for the provision of health care to you.
We are required to abide by the terms of this Notice of Privacy Practices. We may change the terms of our notice at any time. Any such new notice will be effective for all protected health information that we maintain at that time. Upon your request, you may obtain any revised Notice of Privacy Practices by calling us and requesting that a revised copy be sent to you in the mail or asking for one at the time of your next visit. You acknowledge receipt of this notice by accepting Terms & Conditions for using the Services provided by She’s It, LLC.
1. Uses and Disclosures of Protected Health Information
USES AND DISCLOSURES OF PROTECTED HEALTH INFORMATION BASED UPON YOUR WRITTEN OR ELECTRONIC CONSENT
Your protected health information may be used and disclosed by She’s It, LLC and others outside She’s It that are involved in your care and treatment for the purpose of providing health care services to you.
USES AND DISCLOSURES OF PROTECTED HEALTH INFORMATION BASED UPON YOUR WRITTEN OR ELECTRONIC AUTHORIZATION
Other uses and disclosures of your protected health information will be made only with your written or electronic authorization, unless otherwise permitted or required by law as described below. You may revoke your authorization, at any time, in writing, except to the extent that She’s It, LLC has taken an action in reliance on the use or disclosure indicated in the authorization.
OTHER USES AND DISCLOSURES THAT MAY BE MADE AND TO WHICH YOU MAY AGREE OR OBJECT
In the circumstances listed below, you may agree or object to the use or disclosure of the protected health information in the manner described. In the absence of agreement or objection, She’s It may, using professional judgment, determine whether the disclosure of health information is in your best interest. If such a determination is made, only the protected health information that is relevant to your health care will be disclosed.
Others Involved in Your Healthcare: Unless you object, we may disclose to a member of your family, a relative, a close friend or any other person you identify, your protected health information that directly relates to that person’s involvement in your health care. If you are unable to agree or object to such a disclosure, we may disclose such information as necessary if we determine that it is in your best interests, based on our professional judgment. We may use or disclose protected health information to notify or assist in notifying a family member, personal representative or any other person that is responsible for your care of your location, general condition or death. Finally, we may use or disclose your protected health information to an authorized public or private entity to assist in disaster relief efforts and to coordinate uses and disclosures to family or other individuals involved in your health care.
Emergencies: In an emergency treatment situation, we may have to use or disclose your protected health information in a context in which consent for the release of information has not already been given. If this happens, She’s It will try to obtain your consent to the release of information as soon as reasonably practicable after the delivery of the treatment.
OTHER PERMITTED AND REQUIRED USES AND DISCLOSURES THAT MAY BE MADE WITHOUT YOUR CONSENT, AUTHORIZATION OR OPPORTUNITY TO OBJECT
There are other circumstances in which we may have to use or disclose your protected health information, even without your consent or authorization. These situations include:
Disclosure Required By Law: We may use or disclose your protected health information to the extent that the use or disclosure is required by law. The use or disclosure will be made in compliance with the law and will be limited to the relevant requirements of the law. You will be notified, as required by law, of any such uses or disclosures.
Public Health: We may disclose your protected health information for public health activities and purposes to a public health authority that is permitted by law to collect or receive the information. The disclosure will be made for the purpose of controlling disease, injury or disability. We may also disclose your protected health information, if directed by the public health authority, to a government agency that is collaborating with the public health authority.
Communicable Diseases: We may disclose your protected health information, if authorized by law, to a person who may have been exposed to a communicable disease or may otherwise be at risk of contracting or spreading the disease or condition.
Health Oversight: We may disclose protected health information to a health oversight agency for activities authorized by law, such as audits, investigations, and inspections. Oversight agencies seeking this information include government agencies that oversee the health care system, government benefit programs, other government regulatory programs and civil rights laws.
Abuse or Neglect: We may disclose your protected health information to a government authority that is authorized by law to receive reports of child abuse or neglect. In addition, we may disclose your protected health information if we believe that you has been a victim of abuse, neglect or domestic violence to the governmental entity or agency authorized to receive such information. In this case, the disclosure will be made consistent with the requirements of applicable federal and state laws.
Food and Drug Administration: We may disclose your protected health information to a person or company required by the Food and Drug Administration to report adverse events, product defects or problems, biologic product deviations, track products; to enable product recalls; to make repairs or replacements; or to conduct post marketing surveillance, as required.
Legal or Administrative Proceedings or Investigations: We may disclose protected health information in the course of any judicial or administrative proceeding or investigation, in response to an order of a court or administrative tribunal (to the extent such disclosure is expressly authorized), in certain conditions in response to a subpoena, discovery request or other lawful process or request.
Law Enforcement: We may disclose protected health information, so long as applicable legal requirements are met, for law enforcement purposes. These law enforcement purposes include requests: (1) pursuant to legal processes or as otherwise required by law; (2) for limited information for identification and location purposes; (3) pertaining to potential victims of a crime; (4) relating to suspicion that a death has occurred as a result of criminal conduct; (5) relating to a medical emergency (not at She’s It, LLC ) and it is necessary to alert law enforcement regarding a potential crime.
Coroners, Funeral Directors, and Organ Donation: We may disclose protected health information to a coroner or medical examiner for identification purposes, determining cause of death or for the coroner or medical examiner to perform other duties authorized by law. We may also disclose protected health information to a funeral director, as authorized by law, in order to permit the funeral director to carry out his/her duties. We may disclose such information in reasonable anticipation of death. protected health information may be used and disclosed for cadaveric organ, eye or tissue donation purposes.
Threat to Public Safety: Consistent with applicable federal and state laws, we may disclose your protected health information, if we believe that the use or disclosure is necessary to prevent or lessen a serious and imminent threat to the health or safety of a person or the public. We may also disclose protected health information if it is necessary for law enforcement authorities to identify or apprehend an individual.
Research. We may use or disclose your protected health information without your consent or authorization if an Institutional Review Board or Privacy Board approves a waiver of authorization for such disclosure.
Information Not Personally Identifiable. We may use or disclose your protected health information in ways that do not personally reveal your identity.
2. Your Rights
Set forth below is a statement of your rights with respect to your protected health information and a brief description of how you may exercise these rights.
You have the right to inspect and copy your protected health information. This means you may inspect and obtain a copy of protected health information about you that is contained in a designated record set for as long as we maintain the protected health information. A “designated record set” contains any records that She’s It uses regarding your care.
Under federal law, however, you may not inspect or copy the following records: psychotherapy notes; information compiled in reasonable anticipation of, or use in, a civil, criminal, or administrative action or proceeding, and protected health information that is subject to law that prohibits access to protected health information. In some circumstances, you may have a right to review a decision that denies you access to information. Please contact us at firstname.lastname@example.org if you have questions about access to your health information.
You have the right to request a restriction on the use or disclosure of your protected health information. This means you may ask us not to use or disclose any part of your protected health information for the purposes of treatment, payment or healthcare operations. You may also request that any part of your protected health information not be disclosed to family members or friends who may be involved in your care or for notification purposes as described in this Notice of Privacy Practices. Your request must state the specific restriction requested and to whom you want the restriction to apply. However, She’s It is not required to agree to a restriction that you request. If She’s It believes it is in your best interest to permit use and disclosure of your protected health information, your protected health information will not be restricted. If She’s It does agree to a requested restriction, we may not use or disclose your protected health information in violation of that restriction unless it is needed to provide emergency treatment for you. With this in mind, please discuss any restriction you wish to request in advance with the She’s It Privacy Contact.
You have the right to receive an accounting of certain disclosures we have made, if any, of your protected health information. This right does not apply to all disclosures; in particular, it does not apply to disclosures for purposes necessary to carry out treatment, payment or healthcare operations as described in this Notice of Privacy Practices. It excludes disclosures we may have made to you, you, for a facility directory, to family members or friends involved in your care, or for notification purposes. The right to receive this information is subject to additional exceptions, restrictions and limitations. We also are required to notify you following a breach of your health information, if that information is unsecured.
3. Electronic Communications
You may always contact us at email@example.com and choose to communicate with us electronically. However, we warn you that we can make no guarantee that the email will be or will remain encrypted during the data transfer, and that there may be some level of risk that the information in the email could be read by a third party. By communicating with us via email, and, especially by making a request(s) to receive your information via unencrypted email, you acknowledge that you are aware that email is not a secure method of communication, and that you agree to the risks.
You may complain to us or to the Secretary of Health and Human Services if you believe your privacy rights have been violated by us. You may file a complaint with us by notifying our Privacy Contact of your complaint. We will not retaliate against you or you for the filing of such a complaint.
If you have questions, suggestions, or concerns about this policy, or about our use of your information, please contact us at firstname.lastname@example.org.
You may also contact us at:
She’s It, LLC
929 S. High St., #204
West Chester, PA 19382 U.S.A.